Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/805356-959f-41c5-99b6-9274920dcaa1/1/DHrE1Cbq31KppQNohWUq1BDqysY.roa
File: DHrE1Cbq31KppQNohWUq1BDqysY.roa (raw, json)
Hash identifier: +FNUsr+VIJStLuP3SiqVt2xU6EdiyDGNzjhxYbgXhiI=
Subject key identifier: 0C:7A:C4:D4:26:EA:DF:52:A9:A5:03:68:85:65:2A:D4:10:EA:CA:C6
Certificate issuer: /CN=0ef15428a4b5be5e73e7d2282b51c819aea38f9b
Certificate serial: 018570150D6AA4A673CEF47DE0018076B235
Authority key identifier: 0E:F1:54:28:A4:B5:BE:5E:73:E7:D2:28:2B:51:C8:19:AE:A3:8F:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DvFUKKS1vl5z59IoK1HIGa6jj5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/805356-959f-41c5-99b6-9274920dcaa1/1/DHrE1Cbq31KppQNohWUq1BDqysY.roa
Signing time: Mon 02 Jan 2023 01:25:05 +0000
ROA not before: Mon 02 Jan 2023 01:25:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43854
IP address blocks: 91.198.190.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:29:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:0d:6a:a4:a6:73:ce:f4:7d:e0:01:80:76:b2:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ef15428a4b5be5e73e7d2282b51c819aea38f9b
Validity
Not Before: Jan 2 01:25:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c7ac4d426eadf52a9a5036885652ad410eacac6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:68:69:86:df:66:4b:11:50:e0:b8:1f:9e:a2:
53:95:5e:3d:1e:9c:ca:ff:ed:27:9a:86:54:e8:c8:
5f:f1:c8:ad:c0:10:47:89:6b:86:d4:03:00:92:92:
d4:8f:d6:f9:75:59:c0:41:67:ce:0d:75:99:26:16:
1f:23:25:6f:1b:65:3b:2e:61:3f:fd:35:89:7f:9a:
da:dd:c9:2d:73:fe:90:9d:c6:6d:ec:46:29:5f:74:
46:c6:a2:05:bd:80:d5:e4:75:cb:d1:f4:21:6b:7d:
16:42:4d:7e:95:a7:6b:c1:5b:a2:ba:8c:1b:d1:87:
d3:30:73:4d:cd:c0:a8:95:5e:5e:b4:41:23:0f:46:
f5:1b:72:be:82:4e:96:45:3f:8d:ae:a6:41:1b:75:
fe:e6:9e:c4:16:32:81:a9:69:33:05:57:f8:55:58:
17:b2:25:9d:37:50:c9:18:d9:ce:1c:45:2c:ef:62:
91:75:19:a2:fb:d9:f3:dc:e4:6b:92:4c:6d:79:94:
e5:e0:3e:f0:c0:eb:43:a1:cd:56:7c:8e:d0:f9:14:
2a:be:10:0c:86:1b:ef:6c:8d:f4:be:6a:2c:c5:47:
7c:b3:09:3e:df:61:62:0a:c6:3b:55:06:d6:bd:00:
6b:ca:35:1b:e3:bd:48:01:2a:67:88:48:82:65:64:
4d:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:7A:C4:D4:26:EA:DF:52:A9:A5:03:68:85:65:2A:D4:10:EA:CA:C6
X509v3 Authority Key Identifier:
keyid:0E:F1:54:28:A4:B5:BE:5E:73:E7:D2:28:2B:51:C8:19:AE:A3:8F:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DvFUKKS1vl5z59IoK1HIGa6jj5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/805356-959f-41c5-99b6-9274920dcaa1/1/DHrE1Cbq31KppQNohWUq1BDqysY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/805356-959f-41c5-99b6-9274920dcaa1/1/DvFUKKS1vl5z59IoK1HIGa6jj5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.190.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:03:17:90:58:33:0b:37:e3:83:71:b7:90:0c:d3:0c:77:0e:
06:56:9c:21:c3:10:59:be:1b:2f:b5:fc:49:f4:8f:c2:18:93:
ca:1b:f0:7b:d6:8b:65:5e:2d:98:c3:f3:97:aa:c0:12:15:7b:
d8:6c:b2:48:2b:27:e3:e5:6f:4f:b2:29:ba:41:54:cd:84:a6:
c1:23:22:db:1a:60:15:24:8c:0a:d6:c4:84:e6:f5:71:a4:c5:
f5:39:3e:07:86:1d:7e:f3:02:58:bd:8e:9c:41:15:63:72:79:
4d:d1:22:60:af:87:d8:09:ee:21:52:e3:8e:81:6f:c6:04:74:
e9:26:19:20:9a:73:2b:37:a4:eb:b4:78:aa:3b:8f:fd:74:90:
10:60:f4:57:d3:85:63:58:b2:23:24:8d:b0:90:11:09:53:e3:
90:f6:5c:e3:83:94:7c:8d:c5:31:20:a7:cd:e4:69:ff:4f:a8:
58:4d:93:cb:4a:9c:2e:aa:67:39:51:cd:13:78:89:13:2b:89:
2f:2e:ff:a0:ef:78:8d:57:03:cc:c0:44:11:40:d7:5b:6a:e1:
e1:86:c1:93:be:ea:6c:8c:81:1f:06:3e:c1:49:92:7f:d4:15:
ce:c6:04:a9:37:4f:8c:d3:0b:16:8f:00:a8:62:ef:46:4f:c5:
ac:17:2c:5b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwFQ1qpKZzzvR94AGAdrI1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBlZjE1NDI4YTRiNWJlNWU3M2U3ZDIyODJiNTFjODE5YWVh
MzhmOWIwHhcNMjMwMTAyMDEyNTA1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYzdhYzRkNDI2ZWFkZjUyYTlhNTAzNjg4NTY1MmFkNDEwZWFjYWM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt2hpht9mSxFQ4LgfnqJTlV49HpzK
/+0nmoZU6Mhf8citwBBHiWuG1AMAkpLUj9b5dVnAQWfODXWZJhYfIyVvG2U7LmE/
/TWJf5ra3cktc/6QncZt7EYpX3RGxqIFvYDV5HXL0fQha30WQk1+ladrwVuiuowb
0YfTMHNNzcColV5etEEjD0b1G3K+gk6WRT+NrqZBG3X+5p7EFjKBqWkzBVf4VVgX
siWdN1DJGNnOHEUs72KRdRmi+9nz3ORrkkxteZTl4D7wwOtDoc1WfI7Q+RQqvhAM
hhvvbI30vmosxUd8swk+32FiCsY7VQbWvQBryjUb471IASpniEiCZWRNuwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAx6xNQm6t9SqaUDaIVlKtQQ6srGMB8GA1UdIwQY
MBaAFA7xVCiktb5ec+fSKCtRyBmuo4+bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRHZGVUtLUzF2bDV6NTlJb0sxSElHYTZqajVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS84MDUzNTYtOTU5Zi00MWM1LTk5YjYt
OTI3NDkyMGRjYWExLzEvREhyRTFDYnEzMUtwcFFOb2hXVXExQkRxeXNZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOS84MDUzNTYtOTU5Zi00MWM1LTk5YjYtOTI3NDkyMGRjYWEx
LzEvRHZGVUtLUzF2bDV6NTlJb0sxSElHYTZqajVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8a+MA0G
CSqGSIb3DQEBCwUAA4IBAQDAAxeQWDMLN+ODcbeQDNMMdw4GVpwhwxBZvhsvtfxJ
9I/CGJPKG/B71otlXi2Yw/OXqsASFXvYbLJIKyfj5W9Psim6QVTNhKbBIyLbGmAV
JIwK1sSE5vVxpMX1OT4Hhh1+8wJYvY6cQRVjcnlN0SJgr4fYCe4hUuOOgW/GBHTp
JhkgmnMrN6TrtHiqO4/9dJAQYPRX04VjWLIjJI2wkBEJU+OQ9lzjg5R8jcUxIKfN
5Gn/T6hYTZPLSpwuqmc5Uc0TeIkTK4kvLv+g73iNVwPMwEQRQNdbauHhhsGTvups
jIEfBj7BSZJ/1BXOxgSpN0+M0wsWjwCoYu9GT8WsFyxb
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:21 2024 by rpki-client on console-fra.rpki-client.org